Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5111 5.3 警告
Network 		Discourse Discourse Discourseにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-34947 2026-04-24 11:44 2026-04-3 Show GitHub Exploit DB Packet Storm
5112 9.1 緊急
Network 		nearform fast-jwt nearformのfast-jwtにおける暗号アルゴリズムの使用に関する脆弱性 CWE-327
不完全、または危険な暗号アルゴリズムの使用 		CVE-2026-34950 2026-04-24 11:44 2026-04-6 Show GitHub Exploit DB Packet Storm
5113 4.3 警告
Network 		Plunk Plunk PlunkにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-34975 2026-04-24 11:44 2026-04-6 Show GitHub Exploit DB Packet Storm
5114 10 緊急
Network 		dgraph dgraph dgraphにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-34976 2026-04-24 11:44 2026-04-6 Show GitHub Exploit DB Packet Storm
5115 8.2 重要
Local 		Vim Vim VimにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-34982 2026-04-24 11:44 2026-04-6 Show GitHub Exploit DB Packet Storm
5116 6.5 警告
Network 		external-secrets external secrets operator external-secretsのexternal secrets operatorにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-34984 2026-04-24 11:44 2026-04-14 Show GitHub Exploit DB Packet Storm
5117 8.1 重要
Network 		jellyfin jellyfin jellyfinにおける複数の脆弱性 CWE-73
CWE-918
CVE-2026-35032 2026-04-24 11:44 2026-04-14 Show GitHub Exploit DB Packet Storm
5118 9.1 緊急
Network 		jellyfin jellyfin jellyfinにおける複数の脆弱性 CWE-862
CWE-88
CVE-2026-35033 2026-04-24 11:43 2026-04-14 Show GitHub Exploit DB Packet Storm
5119 9 緊急
Network 		Ci4-cms-erp Ci4MS Ci4-cms-erpのCi4MSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-35035 2026-04-24 11:43 2026-04-6 Show GitHub Exploit DB Packet Storm
5120 7.2 重要
Network 		Ech0 Ech0 Ech0におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-35037 2026-04-24 11:43 2026-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349391 - roaring_penguin
mandrakesoft
suse 		mimedefang
mandrake_linux
mandrake_linux_corporate_server
suse_linux 		MIMEDefang in MIME-tools 5.414 allows remote attackers to bypass virus scanning capabilities via an e-mail attachment with a virus that contains an empty boundary string in the Content-Type header. NVD-CWE-Other
CVE-2004-1098 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
349392 - tips mailpost Cross-site scripting (XSS) vulnerability in mailpost.exe in MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to execute arbitrary web script or HTM… NVD-CWE-Other
CVE-2004-1100 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
349393 - tips mailpost Successful exploitation requires that debug mode is enabled. NVD-CWE-Other
CVE-2004-1100 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
349394 - tips mailpost mailpost.exe in MailPost 5.1.1sv, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash), leak sensitive pathname information in the resulting error messag… NVD-CWE-Other
CVE-2004-1101 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
349395 - tips mailpost MailPost 5.1.1sv, and possibly earlier versions, displays a different error message depending on whether the requested file exists or not, which allows remote attackers to gain sensitive information. NVD-CWE-Other
CVE-2004-1102 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
349396 - tips mailpost MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to gain sensitive information via the debug parameter, which reveals information such as the path … NVD-CWE-Other
CVE-2004-1103 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
349397 - nortel contivity Nortel Networks Contivity VPN Client displays a different error message depending on whether the username is valid or invalid, which could allow remote attackers to gain sensitive information. NVD-CWE-Other
CVE-2004-1105 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
349398 - gentoo linux dispatch-conf in Portage 2.0.51-r2 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files. NVD-CWE-Other
CVE-2004-1107 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
349399 - gentoo linux qpkg in Gentoolkit 0.2.0_pre10 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary directory. NVD-CWE-Other
CVE-2004-1108 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm
349400 - kerio personal_firewall The FWDRV.SYS driver in Kerio Personal Firewall 4.1.1 and earlier allows remote attackers to cause a denial of service (CPU consumption and system freeze from infinite loop) via a (1) TCP, (2) UDP, o… NVD-CWE-Other
CVE-2004-1109 2017-07-11 10:30 2005-01-10 Show GitHub Exploit DB Packet Storm